Date: Mon, 22 Apr 2002 18:15:15 -0700 (PDT) From: Jason Stone <jason@shalott.net> To: Roger Marquis <marquis@roble.com> Cc: <security@FreeBSD.ORG> Subject: Re: DNS Question Message-ID: <20020422180631.M14111-100000@walter> In-Reply-To: <20020422172141.D64443-100000@roble.com>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 > Can it communicate with syslogd when chrooted? Yes, it can. However, you may not want to. Consider that some syslogd's have had exploits in the past, and that if you allow a daemon in the chroot to communicate with a daemon outside the chroot, you're exposing yourself in a way that violates the whole point of the chroot. I would recommend running a full-on jail if it's possible. -Jason ----------------------------------------------------------------------- I worry about my child and the Internet all the time, even though she's too young to have logged on yet. Here's what I worry about. I worry that 10 or 15 years from now, she will come to me and say "Daddy, where were you when they took freedom of the press away from the Internet?" -- Mike Godwin -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: See https://private.idealab.com/public/jason/jason.gpg iD8DBQE8xLWmswXMWWtptckRAiMEAKCIDyhGzJr095D3KKZFjqB/713ongCdFg9T 52tdGY9oqRu7Z2zoSIQmuzc= =onh8 -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020422180631.M14111-100000>